Method, server and system for authenticating identify information in DNS message

A technology of identity information and servers, applied in the Internet field, can solve the security risks of the domain name system, the lack of DNS message authentication mechanism and other problems, and achieve the effect of improving security

Inactive Publication Date: 2010-09-22
COMP NETWORK INFORMATION CENT CHINESE ACADEMY OF SCI
View PDF3 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] In the process of implementing the embodiment of the present invention, the inventor found that the domain name system in the prior art lacks an authentication mechanism for DNS messages when providing services, so the domain name system has security risks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, server and system for authenticating identify information in DNS message
  • Method, server and system for authenticating identify information in DNS message
  • Method, server and system for authenticating identify information in DNS message

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0032] figure 2 A flowchart of a method for authenticating identity information in a DNS message provided in the first embodiment of the present invention. The execution subject of this embodiment may be a server, such as an authoritative server or other types of DNS servers. Such as figure 2 As shown, the method provided in this embodiment includes:

[0033] Step 21: The server receives a DNS message, the DNS message includes signature information and ve...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method, a server and a system for authenticating identify information in a DNS (Domain Name Server) message, belonging to the technical field of internet. The method comprises the following steps of: receiving a DNS message, wherein the DNS message comprises signature information and check information, the signature information is obtained by encrypting the check information with a first key, and the check information comprises the identify information of the inquiry terminal; acquiring a second key corresponding to the first key; decrypting the signature information with the second key to obtain a decryption result; and succeeding in authenticating the identify information of the inquiry terminal when the decryption result is in accordance with the check information. By introducing the mechanism of authenticating the identify information in the DNS message to a domain name system, the invention effectively prevents other terminals from defrauding service by counterfeiting the identify information of the inquiry terminal having access authority when the server carries out access control based on the identify information of the inquiry terminal, thereby improving the safety of the domain name system.

Description

technical field [0001] The invention relates to the technical field of the Internet, in particular to a method, server and system for authenticating identity information in DNS messages. Background technique [0002] With the continuous development of science and technology, the Internet has been more and more widely used in people's work and life. As an important part of the Internet, the Domain Name System (DNS for short) provides domain names that are convenient for human memory. A service that performs mapping queries between IP addresses and IP addresses used by computers. [0003] figure 1 It is a schematic diagram of the domain name system structure supporting recursive query in the prior art. Such as figure 1 As shown, the domain name system includes a host terminal, a recursive server, and multiple authoritative servers, such as authoritative server A, authoritative server B, and authoritative server C. exist figure 1 A possible procedure for a recursive query ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L9/32
CPCH04L63/0823H04L29/12066H04L9/3247H04L61/1511H04L61/4511
Inventor 毛伟李晓东陈涛王龑沈烁王利明
Owner COMP NETWORK INFORMATION CENT CHINESE ACADEMY OF SCI
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap